Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-124337

[OAuth] Improve nonce-generation

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Fixed
    • Icon: P2: Important P2: Important
    • None
    • None
    • Network: Authentication
    • None

      Analyse QAbstractOAuthPrivate::generateRandomString(quint8 length) and possibly
      change it to use QRandomGenerator with more secure seeding than toMSecsSinceEpoch().

      These nonces are used by OIDC, as well as the 'state' in regular OAuth flows, and in future by PKCE

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

            mmutz Marc Mutz
            vuokko Juha Vuolle
            Vladimir Minenko Vladimir Minenko
            Alex Blasche Alex Blasche
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved:

                There are no open Gerrit changes